Creating Your Own Custom Ubuntu 7.10 Or Linux Mint 4.0 Live-CD With Remastersys
This guide shows how you can create a Live-CD from your Ubuntu Gutsy
Gibbon or Linux Mint 4.0 system with a tool called remastersys.
Remastersys is available in the Linux Mint romeo
repository. You can customize your Ubuntu/Linux Mint system and then
let remastersys create an iso image of it which you can then burn onto
a CD/DVD.
Configuring SSH To Use Freeradius And WiKID For Two-Factor Authentication
Radius is a great standard. It is powerful enough to accomplish a great deal and simple enough to be easy to handle. Freeradius
is an excellent, open source radius server that ships with many Linux
variants. It is well documented and well supported. The WiKID Strong
Authentication server is a commercial/open source two-factor
authentication system that uses public key encryption to transmit PINs
and one-time passcodes securely to software tokens running on
Blackberries, cell phones, Palms, PocketPCs or, using the J2SE client,
Linux, Macs and Windows PCs. You can think of WiKID like certificates,
but without the hassles of white lists/black lists and more secure –
because the PIN is validated on the server preventing offline
brute-force attacks.
Samba Fileserver With SWAT On Fedora 8
This document describes how to set up and configure a Samba fileserver on Fedora 8 with the Samba Web Administration Tool (SWAT). The resulting system provides an easy to use fileserver for your Windows network.
Getting MySQL Status Values With mysqlreport
mysqlreport is a Perl script that displays a well-formatted report of important MySQL status variables (taken from MySQL’s SHOW STATUS; output) that can help you gain an understanding of what is happening under MySQL’s hood. It can help diagnose problems.
Back Up Your Files With Pybackpack On Fedora 8
This document describes how to set up, configure and use Pybackpack
on Fedora 8. The result is an easy to use backup system for desktop
usage. Pybackpack creates incremental backups which can be stored
locally or remotely (SSH) – the usage of removable devices is
supported. You have also the option to burn the backup(s) directly on a
CD/DVD.
Installing FOG Computer Imaging Solution On Fedora 8
This tutorial will show how to install FOG, a free computer imaging
solution on Fedora 8. FOG is an open source replacement for products
like Ghost or Zenworks Imaging. FOG can be used to image Windows XP and
Vista machines that have a single partition on them. FOG does not use
boot disks, instead everything is done via PXE and DHCP. The management
of FOG is all done via a web portal. FOG also includes things like
memtest, disk wiping, low-level disk checking and file recovery. FOG
also includes a service that will do things like change the computer’s
hostname after imaging, etc.
Using KVM On Ubuntu 7.10 (Gutsy Gibbon)
In this HowTo I’ll explain how to install and use KVM for running
your services in virtual machines. KVM (Kernel-based Virtual Machine)
is a Linux kernel virtualization technique that provides full
virtualization by using Intel VT (Vanderpool) or AMD-V (Pacifica).
How To Install VMware Server 1.0.4 On Ubuntu 7.10 (Gutsy Gibbon)
This tutorial provides step-by-step instructions about how to
install the free VMware Server on an Ubuntu 7.10 (Gutsy Gibbon) system.
With VMware Server you can create and run guest operating systems
(“virtual machines”) such as Linux, Windows, FreeBSD, etc. under a host
operating system. This has the benefit that you can run multiple
operating systems on the same hardware which saves a lot of money, and
you can move virtual machines from one VMware Server to the next one
(or to a system that has the VMware Player which is also free).
Introduction
Do you think you’re safe if you type https :// before paypal.com? I hope you’ll think twice before you login from a computer connected to a wireless network after reading this guide. Let’s start at the beginning. Let’s say you have an evil neighbour who wants your paypal credentials. He buys himself a nice laptop with a wireless card and, if you are using a wep encryption, he cracks your wep code (click here to see how). After cracking the key he logs into your network. Maybe you always allowed him to use your network because you thought it can’t do any harm to your computer. You aren’t sharing any folders so what’s the problem? Well, in the next few steps I’m going to describe the problem.
The guide
1. Let’s assume your neighbour uses linux to crack your wep key. After cracking it, he installs ettercap (http://ettercap.sourceforge.net/) on his linux system. If you want to do this at home, I would recommend you to download BackTrack because it already has everything installed. Look at the WEP cracking guide I mentioned above for more info about BackTrack. If you want to install it on your own linux distribution, download the source and install it with the following commands:
$ tar -xzvf ettercap-version.tar.gz
$ make
$ make install
2. After installing, you need to uncomment some code to enable SSL dissection. Open up a terminal window and type “nano /usr/local/etc/etter.confâ€, without the quotes. Scroll down using your arrow keys until you find this piece of code:
# if you use iptables:
# redir_command_on = “iptables -t nat -A PREROUTING -i %iface -p tcp –dport %port -j REDIRECT –to-port %rportâ€
# redir_command_off = “iptables -t nat -D PREROUTING -i %iface -p tcp –dport %port -j REDIRECT –to-port %rportâ€
You need to uncomment the last two lines.
# if you use iptables:
redir_command_on = “iptables -t nat -A PREROUTING -i %iface -p tcp –dport %port -j REDIRECT –to-port %rportâ€
redir_command_off = “iptables -t nat -D PREROUTING -i %iface -p tcp –dport %port -j REDIRECT –to-port %rportâ€
3. Press CTRL+O, press enter to safe the file and then press CTRL+X.
4. Boot Ettercap and click on Sniff > Unified Sniffing > type in your wireless interface and press ok.
5. Press CTRL+S to scan for hosts
6. Go to MITM > ARP poisoning, select sniff remote connections and press ok.
7. Now you (and your neighbour!) can start sniffing! Press start > start sniffing. Walk to another computer on your network and open up paypal or any other site where you need to type in an username/password (gmail, hotmail, digg.com, etc.). All credentials will appear on the computer running Ettercap!
8. When you’re done, don’t just close Ettercap, but go to Start > Stop Sniffing, and then go to MITM > Stop mitm attack(s).
But how does all this stuff work?
Look at the following scheme:
Normally when you type in a password, host 1 (your computer) directly connects to host 2 (your modem or router). But if someone launced Ettercap on your network, host 1 isn’t sending it’s passwords to host 2, but to the Attacking host, the host that’s running Ettercap! The attacking host sends everything to Host 2. This means that host 1 isn’t noticing anything! Exactly the same happens with everything that host 2 is sending. Host 2 doesn’t send packets directly to host 1, but forst to the attacking host.
The times of slow internet connections are over and most webmasters don’t have to worry about long loading times anymore. This means that background music becomes more popular. Sometimes you hear a song you like on a site, but you don’t know how the song is called and/or can’t find it anywhere on the world wide web. If the song is embedded with a Flash file, or if the whole site is Flash, most people think that it’s impossible to download the song because they can’t find a link to it. In this post I’ll prove the opposite. I’ll use the website 3121.com/jam/. It’s Prince’s official website, which features a new Jam of the Week every week. Since I’m a big fan I want the songs on my iPhone, but there isn’t a download link on the site! The following steps allow me to download the song, without a download link.
1. Download the web browser Safari (OSX or Windows) and start it.
2. Browse to the site with the embedded song (in this example: 3121.com/jam/)
3. In Safari’s toolbar, click Window > Activity
4. Scroll to the mp3 file, if there’s more than one, use common sense in combination with the file size and file name to find the right one. Double click it.
5. If the download starts automatically, the song will appear in your downloads folder, if it opens Quicktime, hit the little arrow and select safe as source. If it does something else, copy paste the URL in Firefox and go to file > save as.
That’s it! This little trick works for all embedded things (youtube video’s, background music, vodcasts, podcasts etc.)
If you know a better way, please leave a comment, though I think that this beats all youtube download pages/plugins (since it won’t go down after 2 days nor need to be constantly updated)
